VYPR
Unrated severityNVD Advisory· Published Mar 16, 2022· Updated Aug 4, 2024

CVE-2021-41987

CVE-2021-41987

Description

In the SCEP Server of RouterOS in certain Mikrotik products, an attacker can trigger a heap-based buffer overflow that leads to remote code execution. The attacker must know the scep_server_name value. This affects RouterOS 6.46.8, 6.47.9, and 6.47.10.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Mikrotik/Routeroscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = 6.46.8, 6.47.9, 6.47.10

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.